Vérificateur des études et essais en sécurité ferroviaire à RATP Infrastructures. Assurant la sécurité ferroviaire par la validation des schémas de signalisation et les essais techniques.
About the role
- Senior Security Engineer responsible for securing products and infrastructures in crypto and Web3. Collaborating with teams on security posture and compliance in a hybrid working environment.
Responsibilities
- Lead the design and implementation of security controls across AWS, EKS/Kubernetes, CI/CD (Jenkins, GitHub Actions, ArgoCD), and AI/agentic engineering workflows.
- Own threat modelling, risk assessments, and security architecture reviews across infrastructure, applications, and AI-driven systems.
- Drive vulnerability management end-to-end — including code, infrastructure, and AI-generated artifacts — using tools such as NewRelic, Bugsnag, and security scanners.
- Define and enforce secure coding and AI usage standards, including guardrails for LLMs, copilots, and automated workflows.
- Build and operate security monitoring, alerting, and incident response capabilities, including detection and handling of AI/agent-related risks.
- Evaluate and manage security and AI tooling (SAST/DAST, SIEM, EDR, secrets management), ensuring least-privilege access and secure integrations.
- Harden infrastructure and data layers (Terraform, IAM, VPC, Cloudflare, Cassandra, Kafka, Redis), including protections against unauthorized or automated actions.
- Drive compliance (SOC 2, ISO 27001) with a focus on auditability, data protection, and governance of AI systems.
- Act as a security leader — educating teams, shaping best practices, and staying ahead of threats across AI, cloud, and Web3 (smart contracts, key management, bridges).
- Partner with blockchain/product teams to mitigate risks in decentralized systems.
Requirements
- 5–8 years in security engineering across application, cloud, and infrastructure security.
- Strong understanding of crypto/Web3 security (smart contracts, wallet/key management, blockchain attack vectors).
- Deep hands-on experience securing AWS (IAM, VPC, EKS, S3, EC2) and Kubernetes environments.
- Proficiency in AppSec (OWASP Top 10, secure SDLC, code reviews) and common security tooling (SAST/DAST, SIEM, secrets management).
- Solid foundation in network security, cryptography, and auth protocols (OAuth, SAML, MFA).
- Experience with incident response, threat modelling, and frameworks like MITRE ATT&CK.
- Familiarity with compliance standards (SOC 2, ISO 27001, NIST, GDPR).
- Strong communication skills and ability to operate autonomously.
- Interest in or experience working in APAC/Japan (nice to have).
- Nice to have Certifications (CISSP, OSCP, AWS Security, etc.).
- DevSecOps experience and CI/CD security integration.
- Experience with Cloudflare, service mesh (Istio), or microservices security.
- Background in software engineering (Java, Rust, TypeScript).
- Smart contract auditing or Web3 tooling (Slither, MythX, Certora, on-chain monitoring).
- Experience building or scaling a security function.
- Professional fluency in Japanese.
Benefits
- Opportunities for professional development, certifications, and conference attendance
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Data Center Security Officer overseeing security at data center, conducting patrols and monitoring. Responsible for access control, incident investigations, and safety documentation.
Senior Manager overseeing corporate security operations for RBC in the Caribbean region. Responsible for incident management, vendor relations, and policy implementation.
Senior Adviseur informatiebeveiliging at gemeente - delft overseeing information security and advising on security issues across departments. Ensuring compliance with laws and coordinating incident responses for digital safety.
Security Architect developing and maintaining security architecture for web, mobile, and cloud technologies. Collaborating with international teams and managing Jira tasks and reports.
Head of Cybersecurity tools leading a team and overseeing development and operations of security systems at Telia. Engaging with stakeholders to ensure compliance and effective agile delivery planning.
Manager of corporate security operations overseeing site security at QVC's offices and corporate environments. Ensuring compliance and managing teams across multiple regions in a hybrid role.
Global Security Intelligence & Threat Analyst at QVC, gathering intelligence to protect global operations through data analysis and collaboration. Involves tracking risks and supporting leadership decisions.
Lead Global Security Systems for QVC ensuring reliability and performance across all regions. Oversee integrations of new technologies and manage security initiatives with IT and cross - functional teams.
Assistant in safety maintenance supporting the implementation of security measures and managing store maintenance tasks. Focused on ensuring safety protocols are followed in Castorama's Angoulême location.